issues
search
chainreactors
/
picker
将repo变成RSS订阅,文章整理归档, 讨论的社区
GNU General Public License v3.0
110
stars
19
forks
source link
[每日信息流] 2024-08-02
#610
Closed
chainreactorbot
closed
2 months ago
chainreactorbot
commented
3 months ago
每日安全资讯(2024-08-02)
SecWiki News
[ ]
SecWiki News 2024-08-01 Review
Private Feed for M09Ic
[ ]
projectdiscovery made projectdiscovery/actions public
[ ]
4ra1n released temurin-21.0.4 at jar-analyzer/workflow_jre
[ ]
4ra1n released temurin-8u422 at jar-analyzer/workflow_jre
[ ]
INotGreen starred uknowsec/Active-Directory-Pentest-Notes
[ ]
INotGreen starred uknowsec/ReflectiveDLLInjection-Notes
[ ]
INotGreen started following uknowsec
[ ]
INotGreen forked INotGreen/Active-Directory-Pentest-Notes from uknowsec/Active-Directory-Pentest-Notes
[ ]
panjf2000 starred nats-io/nats-server
[ ]
uknowsec starred rocky/python-uncompyle6
[ ]
uknowsec starred zrax/pycdc
[ ]
gh0stkey starred timwhitez/BinHol
[ ]
gh0stkey starred AutoHotkey/AutoHotkey
[ ]
theLSA started following 1N73LL1G3NC3x
[ ]
theLSA started following moyix
[ ]
theLSA started following niemand-sec
[ ]
theLSA starred iDvel/rime-ice
[ ]
theLSA starred INotGreen/SharpScan
[ ]
theLSA starred ymyuuu/IPDB
[ ]
theLSA starred aleenzz/ChromeExtensionInstall
[ ]
theLSA starred cmliu/CF-Workers-docker.io
[ ]
theLSA starred yj94/BinarySpy
[ ]
theLSA starred abc123info/EquationToolsGUI
[ ]
theLSA starred Ackites/KillWxapkg
[ ]
theLSA starred PortSwigger/bypass-bot-detection
[ ]
theLSA starred jdr2021/OSSFileBrowse
[ ]
LloydLabs starred RevEngAI/reai-r2
[ ]
LloydLabs starred RevEngAI/reai-rz
[ ]
LloydLabs starred RevEngAI/creait
[ ]
INotGreen starred WKL-Sec/LayeredSyscall
[ ]
nightRainy starred CCob/ThreadlessInject
Security Boulevard
[ ]
Protect your mini-me—How to prevent child identity theft
[ ]
Widespread OTP-Stealing Campaign Targets Android Users
[ ]
Security Risk Advisors Announces Launch of VECTR Enterprise Edition
[ ]
Fraud in the Travel Industry & How to Prevent It
[ ]
SENIX Security ’23 – Hot Pixels: Frequency, Power, and Temperature Attacks on GPUs and Arm SoCs
[ ]
Partnering With the National Child Protection Task Force
[ ]
Google Using Enhanced Encryption to Protect Cookies
[ ]
Randall Munroe’s XKCD ‘Olympic Sports’
[ ]
Relay Your Heart Away: An OPSEC-Conscious Approach to 445 Takeover
[ ]
As Breach Costs Surge, Companies Need a Better Way to Find Shadow Data
安全客-有思想的安全新媒体
[ ]
针对Android用户的SMS Stealer恶意软件:已识别超过10.5万个样本
[ ]
DigiCert 因域名验证监督问题撤销 83,000 多份 SSL 证书
[ ]
苹果修复了iOS和macOS中的数十个漏洞
[ ]
Siri漏洞导致锁定苹果设备上的数据被盗
[ ]
Microsoft:Azure DDoS 攻击因网络防御错误而放大
[ ]
智能汽车共享驾驶员数据,呼吁联邦审查
[ ]
网络犯罪分子部署10万多个恶意软件Android应用程序来窃取OTC代码
[ ]
Fortanix扩展Key Insight以增强混合环境中的加密安全性
[ ]
勒索软件攻击扰乱了OneBlood血库的运营
[ ]
ISC.AI 2024在京开幕:院士专家共议“安全+AI”发展新路径
Der Flounder
[ ]
Launching the macOS Tips app using URL links on macOS Sonoma
Recent Commits to cve:main
[ ]
Update Thu Aug 1 22:29:05 UTC 2024
[ ]
Update Thu Aug 1 14:36:14 UTC 2024
[ ]
Update Thu Aug 1 06:30:44 UTC 2024
Doonsec's feed
[ ]
8月1日hvv情报推送
[ ]
答面试官问 | 渗透中,怎么绕过CDN等云防护获取真实地址?
[ ]
某木报表RCE_0day
[ ]
ISC.AI 2024在京开幕:院士专家共议“安全+AI”发展新路径
[ ]
2024HVV-0801【0day】搜狗输入法_逻辑绕过windows登录漏洞
[ ]
古代皇帝之最
[ ]
Linux 应急响应手册 v1.9 【重要更新】
[ ]
浅谈搜狗输入法0day的原理
[ ]
8.1hvv情报
[ ]
CVE-2024-41468 POC
[ ]
文心一言、通义千问、智谱AI、百川智能、天工AI、讯飞星火和Kimi七大平台,你会怎么选?
[ ]
当你理解了ABAC,才算真正理解了零信任!
[ ]
Base64编码原理
[ ]
【0day】同享TXEHR V15人力管理管理平台UploadHandler存在任意文件上传漏洞
[ ]
HW2024汇总-8.1(漏洞数173)
[ ]
【HVV情报】2024-08-01
[ ]
搜狗输入法漏洞可绕过Windows锁屏?OneSEC能检测!
[ ]
使用 Terraform 实现红队基础设施自动化
[ ]
秦安:空袭伊朗首都,击杀哈马斯领导人,以色列的疯狂与伊朗的报复,美国战与不战?和中国有多大关系?
[ ]
分享的图片、视频、链接
[ ]
《上海市商用密码行业协会团体标准管理办法》正式发布并施行
[ ]
新耀东方-2024第三届上海网络安全博览会暨发展论坛参观指南
[ ]
四部门 | 网络暴力信息治理规定
[ ]
赣州市国家密码管理局召开全市商用密码应用工作推进会
[ ]
海外研究|美 CISA 发布《跨部门网络安全绩效目标》及对我启示
[ ]
美国重要血液中心遭勒索攻击,数百家医院启动“血液短缺”应急程序
[ ]
业内首款!“星火”电子数据智能取证分析平台重磅发布
[ ]
速来报名!网络设备检验线上培训开班在即
[ ]
【预告】HW内网横向GUI神器
[ ]
【QAXSRC联合活动】| 【六六大顺】六家SRC联合活动惊喜上线!
[ ]
【Web一点通第六弹】借你一双慧眼,防火墙流量看得清、威胁看得见!
[ ]
哥们都被打穿了,你居然还在刷抖音擦边
[ ]
0020. 无限免费试用期【转载】
[ ]
分享一个好用的图片理解模型
[ ]
论报文加密加签场景下如何高效的进行渗透测试
[ ]
安全小报
[ ]
每月动态 | Web3 安全事件总损失约 2.79 亿美元
[ ]
这件事,请千万计算机大学生共同关注!!
[ ]
【每日一题】蓝桥杯历年真题题解 - 蓝肽子序列
[ ]
「深蓝特训」2024 移动安全漏洞对抗专场,报名开启
[ ]
ISC.AI 2024周鸿祎:安全大模型要与安全业务深度融合
[ ]
ISC.AI 2024人工智能峰会:解锁明星场景,助推AI普惠
[ ]
流量对抗-域前置基础设施搭建
[ ]
【漏洞预警】ELECOM 路由器命令执行漏洞(CVE-2024-39607)
[ ]
漏洞挖掘 | edusrc挖掘的骚技巧
[ ]
网赚教程分享(二)
[ ]
立即报名|第二届低空经济智能飞行管理挑战赛
[ ]
招6000人,美团2025届校园招聘7月29日全球启动
[ ]
Hvv-day9威胁情报日记
[ ]
[HTB]记一次通关hackthebox-Oopsie
[ ]
终于凑齐了!“安全运营四杰”都有谁?
[ ]
CertiK马来西亚区块链周活动回顾:Web3.0创新与风险的平衡
[ ]
烽火狼烟|搜狗输入法0day复现及分析
[ ]
【8/1】今日热点漏洞速递
[ ]
网络安全信息与动态周报2024年第30期(7月22日-7月28日)
[ ]
Windows10/Windows11使用搜狗输入法漏洞
[ ]
新一代权限维持|自定义协议加载恶意文件
[ ]
继全球蓝屏后,微软Azure云服务因「安全错误」导致全球宕机
[ ]
告别无效扫描站点漏洞,这两个工具嘎嘎好用
[ ]
由于域验证错误,DigiCert 大规模撤销 TLS 证书
[ ]
Mallet:一款针对任意协议的安全拦截代理工具
[ ]
还是熟悉的木马,但主角是域前置
[ ]
【安全圈】继全球蓝屏后,微软 Azure 云服务因安全错误导致全球宕机
[ ]
【安全圈】由于域验证错误,DigiCert 大规模撤销 TLS 证书
[ ]
【安全圈】苹果修复了iOS和macOS中的数十个漏洞
嘶吼 RoarTalk – 网络安全行业综合服务平台,4hou.com
[ ]
网宿安全最新报告:全球Web应用程序攻击超7千亿次,数据泄露增长44%
[ ]
ISC.AI 2024黄澄清:互联网企业应积极探索AI技术的创新应用
[ ]
ISC.AI 2024任贤良:共同谱写网络安全与人工智能共融创生的新篇章
[ ]
全新出发!Mini版电子数据分析战训一体化平台重磅发布
[ ]
新的 Specula 工具利用 Outlook 在 Windows 中执行远程代码
[ ]
ISC.AI 2024陈智敏:站在总体国家安全观的高度谋划人工智能发展
[ ]
ISC.AI 2024王京涛:加快构建大网络安全工作格局
[ ]
ISC.AI 2024汪鸿雁:鼓励民营企业强化网络安全责任,筑牢网络安全防线
[ ]
ISC.AI2024数字安全峰会:安全大模型引领安全行业革命
[ ]
共建安全+AI新生态,ISC.AI2024第十二届互联网安全大会在京开幕
[ ]
三六零发布国内首个免费安全大模型 “以模制模”助力安全行业新变革
[ ]
ISC.AI 2024邬贺铨:大模型提供方要与垂直行业合作开发行业大模型
[ ]
ISC.AI 2024周鸿祎:发展安全大模型是安全迈向“自动驾驶”的必由之路
[ ]
ISC.AI 2024周鸿祎:让人人都能获得大模型技术红利,360安全大模型免费
Trustwave Blog
[ ]
CISA-FBI Issue Security Warning for Chinese-Manufactured Drones
Y4tacker:Hacking The World!
[ ]
浅析JeecgBoot-jmreport最新权限绕过
paper - Last paper
[ ]
Windows 上的访客会话与空会话
Forcepoint
[ ]
Data Exfiltration Prevention: How to Protect PHI, PII and More
cloud world
[ ]
从 Golang 到 TinyGo:如何为 IOT 构建高效应用程序?
blog.avast.com EN
[ ]
Protect your mini-me—How to prevent child identity theft
GuidePoint Security
[ ]
One Does Not Simply … Get a Cybersecurity Job
Hexacorn
[ ]
High Fidelity detections are Low Fidelity detections, until proven otherwise, Part 2
Reverse Engineering
[ ]
Using Symbolic Execution to Devirtualise a Virtualised Binary
FreeBuf网络安全行业门户
[ ]
FreeBuf早报 | 67 个App已启动网络身份证试点;谷歌官方广告平台正传播恶意软件
[ ]
警惕新型安卓恶意软件,掏空银行账户后设备数据也将不保
[ ]
由于域验证错误,DigiCert 大规模撤销 TLS 证书
[ ]
继全球蓝屏后,微软 Azure 云服务因安全错误导致全球宕机
[ ]
解析CLFS:从CVE-2022-24481到CVE-2022-35803类型混淆权限提升
安全牛
[ ]
实时威胁检出率仅19%,SIEM还是网络安全界的“瑞士军刀”吗?
[ ]
一《财富》50强企业向勒索组织支付了破纪录的5.35亿赎金;《网络暴力信息治理规定》今起施行;4款APP被全网下架 | 牛览
奇客Solidot–传递最新科技情报
[ ]
网络主播成为国家认可的新职业
[ ]
国家网络身份认证已开始测试
[ ]
Forgejo v8.0 释出
[ ]
任何量的酒都有害健康
[ ]
Funtoo Linux 项目终止
[ ]
AMD Zen5 处理器价格披露
[ ]
微软将 OpenAI 列入竞争对手名单
[ ]
菲律宾人希望他们最受欢迎的 YouTube 网红竞选总统
HackerNews
[ ]
美国重要血液中心遭勒索攻击,数百家医院启动“血液短缺”应急程序
[ ]
警惕新型安卓恶意软件,掏空银行账户后设备数据也将不保
[ ]
由于域验证错误,DigiCert 大规模撤销 TLS 证书
[ ]
500 万行阿根廷公民信息遭到泄露
[ ]
大规模短信窃取,全球 113 个国家的 Android 设备遭入侵
[ ]
微软确认 Azure、365 中断与 DDoS 攻击有关
[ ]
与朝鲜有关的恶意软件瞄准 Windows、Linux 和 macOS 开发人员
信安之路
[ ]
后门对抗技术,与管理员躲猫猫,敌进我退,敌退我进
暗影安全
[ ]
微软:云服务大规模宕机因DDoS“防卫过当”
安全内参
[ ]
美国重要血液中心遭勒索攻击,数百家医院启动“血液短缺”应急程序
[ ]
CrowdStrike闯祸让网安险买单?保险公司或赔付15亿美元
腾讯玄武实验室
[ ]
每日安全动态推送(8-1)
Black Hills Information Security
[ ]
WifiForge – WiFi Exploitation for the Classroom
代码卫士
[ ]
搬起石头砸自己的脚?微软DDoS 防御措施出错,放大Azure DDoS 攻击
[ ]
恶意软件攻击Windows、Linux 和 macOS 开发人员
绿盟科技研究通讯
[ ]
建军节-致敬守护
关键基础设施安全应急响应中心
[ ]
ATM被冻结!俄罗斯金融系统遭乌克兰大规模网络攻击
[ ]
大规模短信窃取,全球113个国家的Android设备遭入侵
[ ]
史上最高!这家企业向勒索软件支付了超5.4亿元赎金
KCon 黑客大会
[ ]
演讲议题巡展 | 社会工程学大型攻防演练实战案例剖析
[ ]
【高端培训招募】KCon大会培训日,正式回归啦!
补天平台
[ ]
专属SRC年度“积分挑战赛”上线 | 多重大奖等你来领
极客公园
[ ]
领克上半年增长超 50% 背后,是基因的二次进化
[ ]
Meta 大涨 840 亿美元,小扎逆袭全靠「省」
[ ]
AI 收入激增881%,AMD 想当另一个英伟达
[ ]
苹果研发用心跳解锁 iPhone;周鸿祎:360 用户在为国家安全看广告:英伟达一夜涨了 2.3 万亿 | 极客早知道
情报分析师
[ ]
巴基斯坦:2024年7月恐袭事件梳理(附下载)
[ ]
如何在网络安全中利用开源情报
中国信息安全
[ ]
招聘 | 中国信息安全测评中心非编安全测评人员招聘启事
[ ]
关注 | 中央网信办启动“清朗·网络直播领域虚假和低俗乱象整治”专项行动
[ ]
通知 | 金融监管总局印发《反保险欺诈工作办法》(附全文)
[ ]
关注 | 中国驻德国使馆就德方借网络安全问题公开指责中方表明严正立场
[ ]
关注 | 工信部网安局组织召开网络安全保险服务试点工作推进会
[ ]
解读 | 《网络暴力信息治理规定》如何精准惩治“按键伤人”
[ ]
评论 | 合力织密未成年人网络安全保护网
dotNet安全矩阵
[ ]
.NET 一款反序列化打入冰蝎内存马的工具
[ ]
2024hvv | 13套.NET系统漏洞威胁情报(08.01更新)
[ ]
.NET 通过系统影子账户实现权限维持
嘶吼专业版
[ ]
共建安全+AI新生态,ISC.AI2024第十二届互联网安全大会在京开幕
[ ]
全新出发!Mini版电子数据分析战训一体化平台重磅发布
奇安信病毒响应中心
[ ]
黑产分析报告:一次后攻击阶段升级控制活动分析
微步在线
[ ]
还是熟悉的木马,但主角是域前置
CNCERT国家工程研究中心
[ ]
美军网络司令部AI任务部队由试点转向实战
[ ]
CrowdStrike再爆雷,2.5亿条IoC指标数据被黑客连锅端
[ ]
间谍软件“Mandrake”自 2022 年以来就隐藏在 Google Play 中
数世咨询
[ ]
调查:通讯途径增多带来的安全风险
[ ]
ISC.AI2024数字安全峰会:360、华为、微软等共话安全+AI新挑战
Beacon Tower Lab
[ ]
【0801】重保演习每日情报汇总
[ ]
【漏洞预警】搜狗输入法绕过windows锁屏机制获取系统权限
360数字安全
[ ]
ISC.AI 2024周鸿祎:安全大模型要与安全业务深度融合
[ ]
ISC.AI 2024人工智能峰会:解锁明星场景,助推AI普惠
Over Security - Cybersecurity news aggregator
[ ]
Date Hot Brunettes - 1,494,078 breached accounts
[ ]
mSpy (2024) - 2,394,179 breached accounts
[ ]
Spytech - 5,645 breached accounts
[ ]
Senate confirms first DOD cyber policy chief
[ ]
Tech support scam ring leader gets 7 years in prison, $6M fine
[ ]
Twilio kills off Authy for desktop, forcibly logs out all users
[ ]
NFL to roll out facial authentication software league-wide
[ ]
StackExchange abused to spread malicious PyPi packages as answers
[ ]
Columbus investigating potential data leak after ransomware attack
[ ]
Ford wants patent for tech allowing cars to surveil and report speeding drivers
[ ]
Hackers abuse free TryCloudflare to deliver remote access malware
[ ]
There is no real fix to the security issues recently found in GitHub and other similar software
[ ]
UK takes down major 'Russian Coms' caller ID spoofing platform
[ ]
Taiwan government-backed research organization targeted by APT41 hackers
[ ]
China dismisses Germany’s accusations over cyberattack as ‘targeted defamation’
[ ]
Sitting Ducks DNS attacks let hackers hijack over 35,000 domains
[ ]
Cencora confirms patient health info stolen in February attack
[ ]
Suspects in 'Russian Coms' spoofing service arrested in London, as NCA announces takedown
[ ]
FBI warns of scammers posing as crypto exchange employees
[ ]
US reportedly preparing to release Russian hackers as part of prisoner swap
[ ]
Grandoreiro Malware: Spear Phishing, Outlook Exploits, and More
[ ]
Exodus Marketplace: A Haven for Exiled Criminals
[ ]
APT41 likely compromised Taiwanese government-affiliated research institute with ShadowPad and Cobalt Strike
[ ]
Usare l’IA nei SOC per ridurre il carico di lavoro del team
[ ]
How “professional” ransomware variants boost cybercrime groups
[ ]
Multiplayer.it - 503,957 breached accounts
[ ]
Detecting evolving threats: NetSupport RAT campaign
[ ]
Threat Actors leverage Chinese SHOPOEM Platforms to spread infamous scam campaign
[ ]
April 2024 Cyber Attacks Statistics
[ ]
Where to find Talos at BlackHat 2024
[ ]
Gli attacchi via e-mail sono aumentati del 293%
[ ]
Stealer Logs Posted to Telegram - 26,105,473 breached accounts
渊龙Sec安全团队
[ ]
ISC.AI 2024在京开幕:院士专家共议“安全+AI”发展新路径
IntelTechniques Blog
[ ]
Digital Guide Updates 2024.08.01
Securityinfo.it
[ ]
Usare l’IA nei SOC per ridurre il carico di lavoro del team
[ ]
Gli attacchi via e-mail sono aumentati del 293%
TrustedSec
[ ]
Government Contractor’s Ultimate Guide to CUI
HACKMAGEDDON
[ ]
April 2024 Cyber Attacks Statistics
Rasta Mouse
[ ]
Crystal Malware
迪哥讲事
[ ]
一次十分详细的漏洞挖掘记录,新思路+多个高危
[ ]
看漫画学注入
IT Service Management News
[ ]
Approfondimento sul regolamento eIDAS n. 2024/1183
Posts By SpecterOps Team Members - Medium
[ ]
Relay Your Heart Away: An OPSEC-Conscious Approach to 445 Takeover
Tor Project blog
[ ]
Arti 1.2.6 is released: onion services, RPC, and more
Troy Hunt's Blog
[ ]
Begging for Bounties and More Info Stealer Logs
Deeplinks
[ ]
CrowdStrike, Antitrust, and the Digital Monoculture
[ ]
Atlanta Police Must Stop High-Tech Spying on Political Movements
[ ]
Broad Scope Will Authorize Cross-Border Spying for Acts of Expression: Why You Should Oppose Draft UN Cybercrime Treaty
Have I Been Pwned latest breaches
[ ]
Multiplayer.it - 503,957 breached accounts
[ ]
Stealer Logs Posted to Telegram - 26,105,473 breached accounts
The Register - Security
[ ]
Too late now for canary updates, says pension fund suing CrowdStrike
[ ]
FBI, CISA remind US voters that DDoS attacks can't touch election systems
[ ]
How to counter adversarial AI
[ ]
Firefox's Mozilla follows Google in losing trust in Entrust's TLS certificates
[ ]
Germany names China as source of attack on government geospatial agency
TorrentFreak
[ ]
Suno & Udio to RIAA: Your Music is Copyrighted, You Can’t Copyright Styles
[ ]
Kim Dotcom Denied Leave to Appeal High Court’s Dismissal of His Appeal Against Human Rights Tribunal Decision
Securelist
[ ]
How “professional” ransomware variants boost cybercrime groups
Technical Information Security Content & Discussion
[ ]
Bypassing Rockwell Automation Logix Controllers’ Local Chassis Security Protection
[ ]
From Limited file read to full access on Jenkins (CVE-2024-23897)
[ ]
Windows AppLocker Driver LPE Vulnerability - CVE-2024-21338
The Hacker News
[ ]
Over 1 Million Domains at Risk of 'Sitting Ducks' Domain Hijacking Technique
[ ]
Hackers Distributing Malicious Python Packages via Popular Developer Q&A Platform
[ ]
New Android Banking Trojan BingoMod Steals Money, Wipes Devices
[ ]
Obfuscation: There Are Two Sides To Everything
[ ]
Google Chrome Adds App-Bound Encryption to Protect Cookies from Malware
[ ]
Facebook Ads Lead to Fake Websites Stealing Credit Card Information
Trend Micro Research, News and Perspectives
[ ]
Social Media Malvertising Campaign Promotes Fake AI Editor Website for Credential Theft
Schneier on Security
[ ]
Education in Secure Software Development
Security Affairs
[ ]
Over 20,000 internet-exposed VMware ESXi instances vulnerable to CVE-2024-37085
[ ]
Pharma Giant Cencora confirmed the theft of personal and health information
[ ]
BingoMod Android RAT steals money from victims’ bank accounts and wipes data
Deep Web
[ ]
Dark web is boring
Blackhat Library: Hacking techniques and research
[ ]
Doxing the identity of an initial access broker using Infostealers AI investigation
[ ]
Windows AppLocker Driver LPE Vulnerability - CVE-2024-21338
[ ]
Can a mobile antivirus get rid of a malware from an infected router?
Graham Cluley
[ ]
$75 million record-breaking ransom paid to cybercriminals, say researchers
SANS Internet Storm Center, InfoCON: green
[ ]
Tracking Proxy Scans with IPv4.Games, (Thu, Aug 1st)
[ ]
ISC Stormcast For Thursday, August 1st, 2024 https://isc.sans.edu/podcastdetail/9078, (Thu, Aug 1st)
Information Security
[ ]
HELPPP
[ ]
How Russia & China Hacks Our Democracy?
[ ]
Building HIPAA-Compliant Database in Healthcare - Guide & Tools
Computer Forensics
[ ]
Forensic Workstation - test and eval processing with memory at 64GB vs 128GB vs 256GB?
Your Open Hacker Community
[ ]
Hashes for John the Ripper
[ ]
Old school Mu Server hacking
[ ]
Bandit Labs is hard lmao
[ ]
Uncovering hidden emails and numbers
网安寻路人
[ ]
欧盟《关于金融部门数字业务复原力条例》全文翻译
Security Weekly Podcast Network (Audio)
[ ]
PK Fail - John Loucaides - PSW #837
每日安全资讯(2024-08-02)